ca990d69d4c5327b47b0879c0c18b5da523b7c42b0c2eaae7d1c2bbea14fa526 | Triage

Submit
Reports

Overview

overview

3

Static

static

ca990d69d4...26.dll

windows7-x64

3

ca990d69d4...26.dll

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ca990d69d4c5327b47b0879c0c18b5da523b7c42b0c2eaae7d1c2bbea14fa526.dll

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

ca990d69d4c5327b47b0879c0c18b5da523b7c42b0c2eaae7d1c2bbea14fa526.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ca990d69d4c5327b47b0879c0c18b5da523b7c42b0c2eaae7d1c2bbea14fa526
Size

367KB
MD5

b967e8d2035df41dd9c17ed7e5033d35
SHA1

7c0f02dd0e88c211aca42f66d7c068d36553bb09
SHA256

ca990d69d4c5327b47b0879c0c18b5da523b7c42b0c2eaae7d1c2bbea14fa526
SHA512

345b55594c48b6d5c153ec6590e37b12c2ff91e5b688f55e1f95b14eb521855e368aae715b7ea903af42333dd8ed29b598ed8f4b3e7c5f00195a1a64d9276e91
SSDEEP

6144:NRzywnWbICLtBsyQmEy+oiaOBQF+vMnA7Izu98P6LmMUYct1:TzywnWbjchz8OiuNrRct1

Score

N/A

Malware Config

Signatures

Files

ca990d69d4c5327b47b0879c0c18b5da523b7c42b0c2eaae7d1c2bbea14fa526
.dll windows x86

c9cd19a4e4ce7d6eb69f7edfd9b32dfb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetTraceEnableFlags
GetTraceEnableLevel
GetTraceLoggerHandle
RegisterTraceGuidsW
UnregisterTraceGuids
CloseEventLog

msvcrt

malloc
free
_amsg_exit
_XcptFilter
memcpy

user32

LoadStringW

opengl32

wglGetProcAddress
glMultMatrixf

kernel32

VirtualAlloc
TerminateProcess
SetUnhandledExceptionFilter
SetStdHandle
SetProcessAffinityMask
QueryPerformanceCounter
LocalFree
LocalAlloc
LoadLibraryW
LoadLibraryA
InterlockedExchange
DisableThreadLibraryCalls
EraseTape
EscapeCommFunction
ExitProcess
FreeLibrary
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetSystemTimeAsFileTime
GetTickCount
InterlockedCompareExchange

Exports

Exports

GetAttr
HasAttrString
InPlaceOr
_Type
destroy_read_struct

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy